Adjust various OpenBSD-specific references in manual pages

No single bug reference for this patch, but history includes: http://bugs.debian.org/154434 (login.conf(5)) http://bugs.debian.org/513417 (/etc/rc) http://bugs.debian.org/530692 (ssl(8)) https://bugs.launchpad.net/bugs/456660 (ssl(8)) Forwarded: not-needed Last-Update: 2014-10-07 Patch-Name: openbsd-docs.patch
author: Colin Watson <cjwatson@debian.org> 2014-02-09 16:10:09 +0000
committer: Colin Watson <cjwatson@debian.org> 2015-09-08 14:50:02 +0100
commit: 5399167019a01a47c5208b0f8a6f0600b9af3bd5 (patch)
tree: 4a8e35153bbc1953ea9e6d15ca462bbdf6b5f6c6
parent: 5919db7dc21a34c31be70170728c2838ff59b740 (diff)
5 files changed, 13 insertions, 15 deletions
diff --git a/moduli.5 b/moduli.5
index ef0de0850..149846c8c 100644
--- a/moduli.5
+++ b/moduli.5
@@ -21,7 +21,7 @@
 .Nd Diffie-Hellman moduli
 .Sh DESCRIPTION
 The
-.Pa /etc/moduli
+.Pa /etc/ssh/moduli
 file contains prime numbers and generators for use by
 .Xr sshd 8
 in the Diffie-Hellman Group Exchange key exchange method.
@@ -110,7 +110,7 @@ first estimates the size of the modulus required to produce enough
 Diffie-Hellman output to sufficiently key the selected symmetric cipher.
 .Xr sshd 8
 then randomly selects a modulus from
-.Fa /etc/moduli
+.Fa /etc/ssh/moduli
 that best meets the size requirement.
 .Sh SEE ALSO
 .Xr ssh-keygen 1 ,
diff --git a/ssh-keygen.1 b/ssh-keygen.1
index 9b93666c9..19bed1e34 100644
--- a/ssh-keygen.1
+++ b/ssh-keygen.1
@@ -174,9 +174,7 @@ key in
 .Pa ~/.ssh/id_ed25519
 or
 .Pa ~/.ssh/id_rsa .
-Additionally, the system administrator may use this to generate host keys,
+Additionally, the system administrator may use this to generate host keys.
-as seen in
-.Pa /etc/rc .
 .Pp
 Normally this program generates the key and asks for a file in which
 to store the private key.
@@ -223,9 +221,7 @@ For each of the key types (rsa1, rsa, dsa, ecdsa and ed25519)
 for which host keys
 do not exist, generate the host keys with the default key file path,
 an empty passphrase, default bits for the key type, and default comment.
-This is used by
+This is used by system administration scripts to generate new host keys.
-.Pa /etc/rc
-to generate new host keys.
 .It Fl a Ar rounds
 When saving a new-format private key (i.e. an ed25519 key or any SSH protocol
 2 key when the
@@ -638,7 +634,7 @@ option.
 Valid generator values are 2, 3, and 5.
 .Pp
 Screened DH groups may be installed in
-.Pa /etc/moduli .
+.Pa /etc/ssh/moduli .
 It is important that this file contains moduli of a range of bit lengths and
 that both ends of a connection share common moduli.
 .Sh CERTIFICATES
@@ -837,7 +833,7 @@ on all machines
 where the user wishes to log in using public key authentication.
 There is no need to keep the contents of this file secret.
 .Pp
-.It Pa /etc/moduli
+.It Pa /etc/ssh/moduli
 Contains Diffie-Hellman groups used for DH-GEX.
 The file format is described in
 .Xr moduli 5 .
diff --git a/ssh.1 b/ssh.1
index c84196fd2..c3e12669b 100644
--- a/ssh.1
+++ b/ssh.1
@@ -766,6 +766,10 @@ Protocol 1 is restricted to using only RSA keys,
 but protocol 2 may use any.
 The HISTORY section of
 .Xr ssl 8
+(on non-OpenBSD systems, see
+.nh
+http://www.openbsd.org/cgi\-bin/man.cgi?query=ssl&sektion=8#HISTORY)
+.hy
 contains a brief discussion of the DSA and RSA algorithms.
 .Pp
 The file
diff --git a/sshd.8 b/sshd.8
index 5afd10f27..2f4d4f3c4 100644
--- a/sshd.8
+++ b/sshd.8
@@ -67,7 +67,7 @@ over an insecure network.
 .Nm
 listens for connections from clients.
 It is normally started at boot from
-.Pa /etc/rc .
+.Pa /etc/init.d/ssh .
 It forks a new
 daemon for each incoming connection.
 The forked daemons handle
@@ -864,7 +864,7 @@ This file is for host-based authentication (see
 .Xr ssh 1 ) .
 It should only be writable by root.
 .Pp
-.It Pa /etc/moduli
+.It Pa /etc/ssh/moduli
 Contains Diffie-Hellman groups used for the "Diffie-Hellman Group Exchange".
 The file format is described in
 .Xr moduli 5 .
@@ -963,7 +963,6 @@ The content of this file is not sensitive; it can be world-readable.
 .Xr ssh-keyscan 1 ,
 .Xr chroot 2 ,
 .Xr hosts_access 5 ,
-.Xr login.conf 5 ,
 .Xr moduli 5 ,
 .Xr sshd_config 5 ,
 .Xr inetd 8 ,
diff --git a/sshd_config.5 b/sshd_config.5
index a5afbc37e..355b44544 100644
--- a/sshd_config.5
+++ b/sshd_config.5
@@ -374,8 +374,7 @@ This option is only available for protocol version 2.
 By default, no banner is displayed.
 .It Cm ChallengeResponseAuthentication
 Specifies whether challenge-response authentication is allowed (e.g. via
-PAM or through authentication styles supported in
+PAM).
-.Xr login.conf 5 )
 The default is
 .Dq yes .
 .It Cm ChrootDirectory
author	Colin Watson <cjwatson@debian.org>	2014-02-09 16:10:09 +0000
committer	Colin Watson <cjwatson@debian.org>	2015-09-08 14:50:02 +0100
commit	5399167019a01a47c5208b0f8a6f0600b9af3bd5 (patch)
tree	4a8e35153bbc1953ea9e6d15ca462bbdf6b5f6c6
parent	5919db7dc21a34c31be70170728c2838ff59b740 (diff)

diff --git a/moduli.5 b/moduli.5 index ef0de0850..149846c8c 100644 --- a/moduli.5 +++ b/moduli.5
@@ -21,7 +21,7 @@
21	.Nd Diffie-Hellman moduli	21	.Nd Diffie-Hellman moduli
22	.Sh DESCRIPTION	22	.Sh DESCRIPTION
23	The	23	The
24	.Pa /etc/moduli	24	.Pa /etc/ssh/moduli
25	file contains prime numbers and generators for use by	25	file contains prime numbers and generators for use by
26	.Xr sshd 8	26	.Xr sshd 8
27	in the Diffie-Hellman Group Exchange key exchange method.	27	in the Diffie-Hellman Group Exchange key exchange method.
@@ -110,7 +110,7 @@ first estimates the size of the modulus required to produce enough
110	Diffie-Hellman output to sufficiently key the selected symmetric cipher.	110	Diffie-Hellman output to sufficiently key the selected symmetric cipher.
111	.Xr sshd 8	111	.Xr sshd 8
112	then randomly selects a modulus from	112	then randomly selects a modulus from
113	.Fa /etc/moduli	113	.Fa /etc/ssh/moduli
114	that best meets the size requirement.	114	that best meets the size requirement.
115	.Sh SEE ALSO	115	.Sh SEE ALSO
116	.Xr ssh-keygen 1 ,	116	.Xr ssh-keygen 1 ,


diff --git a/ssh-keygen.1 b/ssh-keygen.1 index 9b93666c9..19bed1e34 100644 --- a/ssh-keygen.1 +++ b/ssh-keygen.1
@@ -174,9 +174,7 @@ key in
174	.Pa ~/.ssh/id_ed25519	174	.Pa ~/.ssh/id_ed25519
175	or	175	or
176	.Pa ~/.ssh/id_rsa .	176	.Pa ~/.ssh/id_rsa .
177	Additionally, the system administrator may use this to generate host keys,	177	Additionally, the system administrator may use this to generate host keys.
178	as seen in
179	.Pa /etc/rc .
180	.Pp	178	.Pp
181	Normally this program generates the key and asks for a file in which	179	Normally this program generates the key and asks for a file in which
182	to store the private key.	180	to store the private key.
@@ -223,9 +221,7 @@ For each of the key types (rsa1, rsa, dsa, ecdsa and ed25519)
223	for which host keys	221	for which host keys
224	do not exist, generate the host keys with the default key file path,	222	do not exist, generate the host keys with the default key file path,
225	an empty passphrase, default bits for the key type, and default comment.	223	an empty passphrase, default bits for the key type, and default comment.
226	This is used by	224	This is used by system administration scripts to generate new host keys.
227	.Pa /etc/rc
228	to generate new host keys.
229	.It Fl a Ar rounds	225	.It Fl a Ar rounds
230	When saving a new-format private key (i.e. an ed25519 key or any SSH protocol	226	When saving a new-format private key (i.e. an ed25519 key or any SSH protocol
231	2 key when the	227	2 key when the
@@ -638,7 +634,7 @@ option.
638	Valid generator values are 2, 3, and 5.	634	Valid generator values are 2, 3, and 5.
639	.Pp	635	.Pp
640	Screened DH groups may be installed in	636	Screened DH groups may be installed in
641	.Pa /etc/moduli .	637	.Pa /etc/ssh/moduli .
642	It is important that this file contains moduli of a range of bit lengths and	638	It is important that this file contains moduli of a range of bit lengths and
643	that both ends of a connection share common moduli.	639	that both ends of a connection share common moduli.
644	.Sh CERTIFICATES	640	.Sh CERTIFICATES
@@ -837,7 +833,7 @@ on all machines
837	where the user wishes to log in using public key authentication.	833	where the user wishes to log in using public key authentication.
838	There is no need to keep the contents of this file secret.	834	There is no need to keep the contents of this file secret.
839	.Pp	835	.Pp
840	.It Pa /etc/moduli	836	.It Pa /etc/ssh/moduli
841	Contains Diffie-Hellman groups used for DH-GEX.	837	Contains Diffie-Hellman groups used for DH-GEX.
842	The file format is described in	838	The file format is described in
843	.Xr moduli 5 .	839	.Xr moduli 5 .


diff --git a/ssh.1 b/ssh.1 index c84196fd2..c3e12669b 100644 --- a/ssh.1 +++ b/ssh.1
@@ -766,6 +766,10 @@ Protocol 1 is restricted to using only RSA keys,
766	but protocol 2 may use any.	766	but protocol 2 may use any.
767	The HISTORY section of	767	The HISTORY section of
768	.Xr ssl 8	768	.Xr ssl 8
		769	(on non-OpenBSD systems, see
		770	.nh
		771	http://www.openbsd.org/cgi\-bin/man.cgi?query=ssl&sektion=8#HISTORY)
		772	.hy
769	contains a brief discussion of the DSA and RSA algorithms.	773	contains a brief discussion of the DSA and RSA algorithms.
770	.Pp	774	.Pp
771	The file	775	The file


diff --git a/sshd.8 b/sshd.8 index 5afd10f27..2f4d4f3c4 100644 --- a/sshd.8 +++ b/sshd.8
@@ -67,7 +67,7 @@ over an insecure network.
67	.Nm	67	.Nm
68	listens for connections from clients.	68	listens for connections from clients.
69	It is normally started at boot from	69	It is normally started at boot from
70	.Pa /etc/rc .	70	.Pa /etc/init.d/ssh .
71	It forks a new	71	It forks a new
72	daemon for each incoming connection.	72	daemon for each incoming connection.
73	The forked daemons handle	73	The forked daemons handle
@@ -864,7 +864,7 @@ This file is for host-based authentication (see
864	.Xr ssh 1 ) .	864	.Xr ssh 1 ) .
865	It should only be writable by root.	865	It should only be writable by root.
866	.Pp	866	.Pp
867	.It Pa /etc/moduli	867	.It Pa /etc/ssh/moduli
868	Contains Diffie-Hellman groups used for the "Diffie-Hellman Group Exchange".	868	Contains Diffie-Hellman groups used for the "Diffie-Hellman Group Exchange".
869	The file format is described in	869	The file format is described in
870	.Xr moduli 5 .	870	.Xr moduli 5 .
@@ -963,7 +963,6 @@ The content of this file is not sensitive; it can be world-readable.
963	.Xr ssh-keyscan 1 ,	963	.Xr ssh-keyscan 1 ,
964	.Xr chroot 2 ,	964	.Xr chroot 2 ,
965	.Xr hosts_access 5 ,	965	.Xr hosts_access 5 ,
966	.Xr login.conf 5 ,
967	.Xr moduli 5 ,	966	.Xr moduli 5 ,
968	.Xr sshd_config 5 ,	967	.Xr sshd_config 5 ,
969	.Xr inetd 8 ,	968	.Xr inetd 8 ,


diff --git a/sshd_config.5 b/sshd_config.5 index a5afbc37e..355b44544 100644 --- a/sshd_config.5 +++ b/sshd_config.5
@@ -374,8 +374,7 @@ This option is only available for protocol version 2.
374	By default, no banner is displayed.	374	By default, no banner is displayed.
375	.It Cm ChallengeResponseAuthentication	375	.It Cm ChallengeResponseAuthentication
376	Specifies whether challenge-response authentication is allowed (e.g. via	376	Specifies whether challenge-response authentication is allowed (e.g. via
377	PAM or through authentication styles supported in	377	PAM).
378	.Xr login.conf 5 )
379	The default is	378	The default is
380	.Dq yes .	379	.Dq yes .
381	.It Cm ChrootDirectory	380	.It Cm ChrootDirectory